Threat Assessment: North Korean Threat Groups
Common Information
Type Value
UUID 56a0e598-9f5f-402f-a6ac-6ed483271e50
Fingerprint e0b01d99ef169abf
Analysis status DONE
Considered CTI value 2
Text language
Published Sept. 9, 2024, 10 p.m.
Added to db Sept. 10, 2024, 12:08 a.m.
Last updated Nov. 17, 2024, 12:53 p.m.
Headline Threat Assessment: North Korean Threat Groups
Title Threat Assessment: North Korean Threat Groups
Detected Hints/Tags/Attributes 123/4/80
RSS Feed
Attributes
Details Type #Events CTI Value
Details Domain 359
com.apple
Details Domain 39
msstorageazure.com
Details Domain 41
officestoragebox.com
Details Domain 40
visualstudiofactory.com
Details Domain 40
azuredeploystore.com
Details Domain 42
msstorageboxes.com
Details Domain 41
officeaddons.com
Details Domain 39
sourceslabs.com
Details Domain 41
zacharryblogs.com
Details Domain 41
pbxcloudeservices.com
Details Domain 41
pbxphonenetwork.com
Details Domain 40
akamaitechcloudservices.com
Details Domain 40
azureonlinestorage.com
Details Domain 40
msedgepackageinfo.com
Details Domain 41
glcloudservice.com
Details Domain 42
pbxsources.com
Details Domain 37
sbmsa.wiki
Details Domain 12
swissborg.blog
Details Domain 3
contortonset.com
Details Domain 3
relysudden.com
Details Domain 6
primerosauxiliosperu.com
Details Domain 3
rentedpushy.com
Details Domain 3
basketsalute.com
Details Domain 3
prontoposer.com
Details Domain 3
www.talesseries.com
Details Domain 2
rgedist.com
Details Domain 4
airbseeker.com
Details Domain 4
globalkeystroke.com
Details Domain 3
jdkgradle.com
Details Domain 6
rebelthumb.net
Details Domain 3
levelframeblog.com
Details File 17
write.php
Details File 2
sfxl.php
Details sha256 2
c9a7b42c7b29ca948160f95f017e9e9ae781f3b981ecf6edbac943e52c63ffc8
Details sha256 2
c7f4aa77be7f7afe9d0665d3e705dbf7794bc479bb9c44488c7bf4169f8d14fe
Details sha256 3
3ea2ead8f3cec030906dcbffe3efd5c5d77d5d375d4a54cca03bfe8a6cb59940
Details sha256 3
2360a69e5fd7217e977123c81d3dbb60bf4763a9dae6949bc1900234f7762df1
Details sha256 2
689cfaa9319f3f7529a31472ecf6b2e0ca6891b736de009e0b6c2ebac958cc94
Details sha256 2
c6a48365c3db9761bd60981bdcdd87aced23d8e60067caa30fee501bf4b47b84
Details sha256 2
a03d13c9825e150810e6e6aaf053d71ec5a53b86581414dd982a74d4a8bc5475
Details sha256 3
927b3564c1cf884d2a05e1d7bd24362ce8563a1e9b85be776190ab7f8af192f6
Details sha256 23
e6bbc33815b9f20b0cf832d7401dd893fbc467c800728b5891336706da0dbcec
Details sha256 16
a64fa9f1c76457ecc58402142a8728ce34ccba378c17318b3340083eeb7acc67
Details sha256 3
479038eb12ed07893ee0dcc04fbdcf182489bbb271f5a4f90f83874881a80ce3
Details sha256 2
2546d239a262c24a6f8ea01d890cbc459a22db79b379b6ec3b24fbb56efb5381
Details sha256 10
5009c7d1590c1f8c05827122172583ddf924c53b55a46826abf66da46725505a
Details sha256 10
87c5d0c93b80acf61d24e7aaf0faae231ab507ca45483ad3d441b5d1acebc43c
Details sha256 2
99dbc6fe3c3e465052fcefa1642861747dc9e069eeb244589b605bd710b1e0d1
Details sha256 11
fee4f9dabc094df24d83ec1a8c4e4ff573e5d9973caa676f58086c99561382d7
Details sha256 2
7667d1b8fcc4f712084e3e3f8b4ab505ab150c52aea7b219249ec508b4b0e224
Details sha256 4
6c121f2b2efa6592c2c22b29218157ec9e63f385e7a1d7425857d603ddef8c59
Details sha256 2
8bfa4fe0534c0062393b6a2597c3491f7df3bf2eabfe06544c53bdf1f38db6d4
Details sha256 2
15d53bb839e00405a34a8b690ec181f5555fc4f891b8248ae7fa72bad28315a9
Details sha256 2
f1713afaf5958bdf3e975ebbab8245a98a84e03f8ce52175ef1568de208116e0
Details sha256 2
081804b491c70bfa63ecdbe9fd4618d3570706ad8b71dba13e234069648e5e48
Details sha256 3
f3b0da965a4050ab00fce727bb31e0f889a9c05d68d777a8068cfc15a71d3703
Details sha256 3
5c907b722c53a5be256dc5f96b755bc9e0b032cc30973a52d984d4174bace456
Details sha256 5
5e40d106977017b1ed235419b1e59ff090e1f43ac57da1bb5d80d66ae53b1df8
Details sha256 3
973f7939ea03fd2c9663dafc21bb968f56ed1b9a56b0284acf73c3ee141c053c
Details sha256 3
0b5db31e47b0dccfdec46e74c0e70c6a1684768dbacc9eacbb4fd2ef851994c7
Details sha256 3
3c8dbfcbb4fccbaf924f9a650a04cb4715f4a58d51ef49cc75bfcef0ac258a3e
Details sha256 3
bce1eb513aaac344b5b8f7a9ba9c9e36fc89926d327ee5cc095fb4a895a12f80
Details sha256 3
bfd74b4a1b413fa785a49ca4a9c0594441a3e01983fc7f86125376fdbd4acf6b
Details sha256 3
cbf4cfa2d3c3fb04fe349161e051a8cf9b6a29f8af0c3d93db953e5b5dc39c86
Details sha256 4
91eaf215be336eae983d069de16630cc3580e222c427f785e0da312d0692d0fd
Details sha256 2
c83c7b000a955f2b8cb92bb112ed606ffd9fbebbe3422f80d90d06b167f2f37b
Details sha256 5
492a643bd1efdaca4ca125ade1b606e7bbf00e995ac9115ac84d1c4c59cb66dd
Details sha256 3
63fb47c3b4693409ebadf8a5179141af5cf45a46d1e98e5f763ca0d7d64fb17c
Details sha256 3
db6a9934570fa98a93a979e7e0e218e0c9710e5a787b18c6948f2eedd9338984
Details sha256 2
d8565d58ad8e4f5558b5cd70df0ad12be9cf44e32ad07aaac6f65b816edbf414
Details IPv4 5
23.254.226.90
Details IPv4 3
146.19.173.125
Details IPv4 3
23.227.202.54
Details IPv4 3
38.132.124.88
Details IPv4 3
88.119.174.148
Details IPv4 3
198.244.135.250
Details Mandiant Temporary Group Assumption 44
TEMP.HERMIT
Details Mandiant Uncategorized Groups 21
UNC4899
Details Threat Actor Identifier - APT 144
APT38
Details Threat Actor Identifier - APT 115
APT43